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AfflgHiiglin U <o the Claims : 

The following listing of claims replaces all previous versions and listings of claims: 
JjsiinRpfCl aints : 

I . (currently amended) A computer-based method for a multiparty electronic 
service, the method comprising steps of: 

negotiating a machine inlcrprelable service specification between all parlies, which 
would cooperate with a particular application running on a host system; defining said service 
specification to: 

identify cooperating parties; 

identify a requestor and format of a service request, said request is adapted to 
contain information about an individual j^jsjiotAimrty to the machmc-inlernrc tahlc 
serv ice s peci fica tion: 

conduct conditional processing steps required for said service request, said 
conditional processing steps is adapted to use stored data about said individual; and 

provide conditional notifications, said notifications is adapted to include 
addilional information about the individual described in the request; 

providing a secure compulation environment in said host system; uploading 
said service specification into said secure compulation environment; enforcing said service 
specification with regards to all cooperating parties; 

receiving a service request from said requestor; 

providing a secure co-processor in said secure compulation environment for 
processing said service request, where said secure processing includes: 

determining the service specification that governs said service request; 
YOR020020 1 59CLSI / 145-0017 2 
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validating the actual requestor and the content of"thc service request 
against an expected requestor and expected contents as defined in the service specification; 

and 

executing the conditional processing and the notifications as defined in 
the service specification, 

2. (original) The method oTclaim 1 further comprising the step of allowing at 
least one party of said cooperating parties to cancel said service specification wherein all 
future service requests that rely on said cancelled service specification will be rejected. 

3. (original) The method of claim 2 wherein said steps of negotiating a machine 
inlcrprciablc service specification, uploading, enforcing, receiving a service request, and 
canceling said service specification comprises the step of conducting said previous steps 
multiple limes. 

4. (original) The method of claim I further comprising the steps of: 

negotiating multiple machine intcrprctable service specifications; defining said 
multiple service specifications; 

uploading said multiple service spccificalions into said secure computation 
environment; and 

enforcing said multiple service specifications with regards to all cooperating parlies. 

5. (original) The method of claim 4 wherein said secure processing steps further 
comprises ihc slep of having at least one of said secure processing steps being executed 
unconditionally. 

6. (original) The method of claim 1 wherein said secure processing steps further 
comprises the stop of having at leasl one of said secure processing steps use data provided in 

YOR920020IS9USI / 145-0017 3 
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said service request and found in said hosi system lo derive further information about said 
individual described in said service request. 

7. (original) The method of claim 6 wherein said at least one of said secure 
processing steps further comprises the step of computing a correlation between biomclric 
data provided in said service request and biomclric data looked up in said host system. 

8. (original) The method of claim 1 wherein said step orproviding conditional 
notifications further comprises the step of providing an empty message. 

9. (original) The method ofelaim 1 wherein said step of negotiating a machine 
intcrprclablc service specification between all parties further comprises the step of providing 
a contract for governing the negotiated service specification. 

10. (original) The method orclaim 1 wherein said secure processing steps further 
comprises the slop of notifying said requestor that said service request was processed. 

1 1 . (originat) The moLhod orclaim 1 wherein said step of enforcing said service 
specification farther comprises the sicp of uploading at least one database from at least one 
party of said cooperating parlies, information contained therein from said at least one 
database is slored in said host system, 

1 2. (original) The method ofelaim 4 wherein said step of negotiating multiple 
machine intcrprclablc service specifications between any cooperating parties further 
comprises the step of providing a contract for governing each negotiated service 
specification. 

] 3. (original) The method ofelaim 1 wherein said step orproviding conditional 
notifications further comprises the step orproviding a notification that is adapted to contain 
information about said individual. 

14, (original) The method orclaim 13, wherein said step of providing a 
notification that is adapted to contain information about said individual further comprises the 
step of providing said notification to at least one party of said cooperating parties, said at 
YOR\>20020l5<)trSl / 145-0017 4 
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least one parly of said cooperating parlies is a party other than said requestor. 

15. (original) The method of claim 14, wherein said step of providing a 
notification to at least one party of said cooperating parties that is adapted to contain 
information about said individual further comprises the step of providing notification to said 
at least one parly or said cooperating parties that is a party other than a provider of said stored 
da! a. 

16. (original) The method of claim 1 wherein said step of providing conditional 
notifications further comprise, the slop of providing a noli fication to at least one party of said 
cooperating parlies that is adapted to contain no information about said individual. 

17. (currently amended) Apparatus for a multiparty electronic service, the apparatus 
comprising: 

at least one host computer adapted to have at least one secure co-processor operating 
in u secure compulation environment, said al least one host computer operative to: 

negotiate a machine mtcrprclable sen-ice specification between all parties, 
which would cooperate with a particular application running on said host computer; 

upload said service specification into said secure computation environment; 
enforce said service specification with regards to all cooperating parties; 

receive a service request from a requestor, the service rcquc^cmgadjatcdjo 
conlajninfonnal^ is ™* * P ar( V to 1ho ™ ac1 "" c intertable 

ggryjee specific ation; 

execute secure processing of said service request; and provide notifications as 
defined in the service specification. 

1 8. (currently amended) The apparatus of claim 17, wherein said at least one host 
computer is further operative to define said service specification to: 

YOR920020159US! / 145-0017 5 
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identify said cooperating parties; 

identify said requestor and the format of said service requcstpsakl-Fequest i9~adapted 
to contain- mformaH'eivabout an-ifldivfcUial; 

conduct conditional processing stops required for said service request, said 

conditional processing steps is adapted to use stored data about said individual; and 

provide conditional notifications, said conditional notifications is adapted to include 
additional information about the individual described in the request. 

1 9, (original) The apparatus of claim 17 wherein said at least one host computer is 
further operative to execute said secure processing to: 

determine the service specification that governs said service request; validate said 
requestor and the content of the service request against an expected requestor and expected 
contents as defined in the service speci fication; and 

execute conditional processing as defined in the service specification. 

20, (original) The apparatus of claim 1 7 wherein said at least one host computer is 
fttrlhcr operative to provide said notifications as conditional notifications that is adapted to 
include additional information about an individual described in the request. 

2 1 . (original) The apparatus of claim 1 7 wherein said at least one host computer is 
further operative to provide a contract for governing the negotiated service specification. 

22. (original) The apparatus of claim ] 7 wherein said at least one host computer 
operative |o negotiate said machine intcq>rctablc service specification, upload said service 
speci ficaliou, enforce said service specification, and receive a service request, is fiirlhcr 
operative to conduct said negotiating, uploading, enforcing and receiving functions multiple 
limes. 

YOK020020150US1 / 145-0017 6 
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23, (original) The apparatus of claim 1 7 wherein said at least one host computer is 
Anther operative to use data provided in said service request and found in said host computer 
In derive further information about an individual described in said service request. 

24, (original) The apparatus of claim 23 wherein said at least one host computer is 
further operative to compute a correlation between biornclric data provided in .said service 
request and bioineliic data looked up in said host computer. 

25, (original) The apparatus of claim 17 wherein said at least one host computer is 
further operative to compute a correlation between biometric data provided in said service 
request and biometric data looked up in said host computer. 

26, (original) The apparatus of claim 1 7 wherein said at least one host computer 
operative to provide notifications is further operative to provide an empty message. 

27, (original) The apparatus of claim 17 wherein said at least one host computer is 
further operative to upload at least one database from at least one party of said cooperating 
parlies, information contained therein from said at least one database is adapted to be stored 
in said host computer* 

2ft. (original) The apparatus of claim 17 wherein said at least one host computer 
operative to negotiate a machine inlcrpretablc service specification between all parties is 
further operative? to: 

negotiate multiple machine interprctablc service specifications; 

define said multiple service specifications; 

upload said multiple service specifications into said secure computation environment; 

and 

enforce said multiple service specifications with regards to all cooperating parlies. 
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2V. (original) The apparatus of claim 1 7 wherein said at least one host computer 
operative to provide notifications is further operative to notify said requestor that said service 
request was processed. 

30. (original) The apparatus of claim 27 wherein said at least one host computer 
operative to provide notifications is further operative to provide conditional notifications that 
is adapted to contain information about an individual, 

31 . (original) The apparatus of claim 18 wherein said at least one host computer is 
further operative to provide said conditional notifications to another party of said cooperating 
parties, said another party of said cooperating parties is a party other than said requestor. 

32. (currently amended) The app aratus m cthori of claim 31 , wherein said at least 
one host computer operative to provide said conditional notifications to said another party of 
said cooperating parties is further operative to provide said conditional notifications to a party 
olhcr than a provider of said stored data. 

33. (currently amended) An identification apparatus for matching individuals, the 
apparatus comprising: 

at least one host computer adapted lo have at least one secure co-processor operating 
in a secure computation environment, said at least one host computer operative to: 

negotiate a machine intcrprctablc contract between all parlies, which would 
cooperate with a particular application running on said host computer; 

upload said contract into said secure computation environment; 

enforce said contract with regards to all cooperating parties; 

receive a service request from a requesto r, the service request being adapted l o 
contain information about an individu al who is not a party to the machine intcrprctablc 
contract; 

YOI19200201WUS1 / [45^0017 8 
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execute secure processing ol said service request; and provide notifications as 
defined in the contract, 

34, (currently amended) An article of manufacture for use in a multiparty 
electronic service, comprising a machine readable medium tangibly embodying a program of 
instructions executable by a machine for implementing a method, the method comprising 
steps of: 

negotiating a -machine inlcrpretablc service specification between all parties, which 
would cooperate with a particular application running on a host system; defining said service 
specification to: 

identi fy cooperating parties; 

identify a requestor and format of a service request, said request is adapted to 
contain information about an individual who is not a party to th e machine intcr prcjable 
scrvi ce specifi cat i on ; 

conduct conditional processing steps required for said service request, said 
conditional processing steps is adapted to use stored data about said individual; and 

provide conditional notifications, said notifications is adapted to include 
additional information about the individual described in the request; 

providing a secure computation environment in said host system; 

uploading said service specification inlo said secure computation 

environment; 

enforcing said service specification with regards to all cooperating parties; 
receiving a service request from said requestor; 

providing a secure co-processor in said secure computation environment for 

YOR920020)5QUS1 / 145-0017 9 
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processing said service request, where said secure processing includes: 

delemuniug the service specification that governs said service request; 
validating the actual requestor and Ihc content or the service request against an expected 
requestor and expected contents as defined in the service specification; and 

executing the conditional processing and the notifications as defined in 
Ihc service specification. 

35. (currently amended) A program storage device readable by a machine, 
tangibly embodying a program or instructions executable by the machine to perform methods 
slops for managing a matching identification service, the method comprising the steps of: 

negotiating a machine intcrprctablc service specification between all parties, which 
would cooperate with a particular application running on a host system; 

defining said service specification to: 

identify cooperating parties; 

identify a requestor and formal of a service request, said request is adapted to 
contain information about an individuHljvh^sn^ 

Mjyjg9.st10cjficajj.Qi1; 

conduct conditional processing steps required for said service request, said 
conditional processing steps is adapted to use stored data about said individual; and 

provide conditional notifications, said notifications is adapted to include 
additional information about the individual described in the request; 

providing a secure compulation environment in said host system; uploading 
said service specification into said secure computation environment; enforcing said service 
specification with regards to all cooperating parlies; 

YOR9200201S9US1 / 145-0017 10 
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receiving a service request from said requestor; 

providing a $ccure co-processor in said secure computation environment for 
processing said service request, where said secure processing includes: 

determining the service specification that governs said service request; 

validating the actual requestor and the content of the service request 
against an expected requestor and expected contents as defined in the service specification; 
and 

executing the conditional processing and the noli fications as defined in 
the service specification. 

36. (currently amended) A multiparty electronic service method comprising the 
slops of: 

providing at leasl one host computer adapted to have at least one secure coprocessor 
operating in a secure computation environment; 

operating paid at least one host computer to negotiate a machine mtcrprelabtc service 
specification between all parties, which would cooperate with a particular application running 
on said host computer; 

uploading said service specification into said secure computation environment; 

enforcing said service specification with regards to all cooperating parlies; 

receiving a service request from a reqne&ior J jheAcr yice request be i ng adapted to 
containing is ncit a part y_ of the mac hin e interpretabl c 

se rvice s ncci fica tion: 

executing secure processing of said service request; and providing notifications as 
defined in ihc service specification, 

YOU920020159US1 / 145-0017 11 
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37. (currently amended) An identification method for matching individuals, the 
method comprising Ihe steps of: 

providing at least one host computer adapted to have at least one secure coprocessor 
operating in a secure computation environment; 

operating said at least one host computer to negotiate a machine interprctablc contract 
between all parties, which would cooperate with a particular application running on said host 
computer; 

uploading said contract into said secure compulation environment; 

enforcing said contract with regards to all cooperating parlies; 

receiving a service request from a requestor, Ihn service request being nflflpledJtt 
C.qnminta^ 
contract; 

executing secure processing of said service request; and 
providing notifications as defined in the contract. 

38, (currently amended) An article of manufacture for use in a multiparty 
electronic service, comprising a machine readable medium tangibly embodying a program or 
instructions executable by a machine for implementing a method, the method comprising 
steps of: 

providing al least one host computer adapted to have at least one secure coprocessor 
operating in a secure computation environment; 

opcraling said at least one host computer to negotiate a machine interprctablc service 
specification between all parties, which would cooperate with a particular application running 
on said host computer; 

YOR920020 1 5WS I / W5-0017 1 2 
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uploading said service specification into said secure computation environment; 

enforcing said service specification with regards to all cooperating parties; 

receiving a service request from a requesto r, the serv ic e request bein g adjipjedjo 
contain i nform ation ab out an ind ividu al who is no t a party to the m achine mterprctablc 

SSJ3ficft.fi pecifi cat io n ; 

executing secure processing of said service request; and 

providing notifications as defined in the service specification. 

39. (currently amended) A program storage device readable by a machine, 
tangibly embodying a program of instructions executable by the machine to perform methods 
steps for managing a matching identification service, the method comprising the steps of: 

providing at least one host computer adapted to have at least one secure coprocessor 
operating in a secure computation environment; 

operating said at least one host computer to negotiate a machine intcrprctablc service 
specification between all parlies, which would cooperate with a particular application running 
on said host computer; 

uploading said service specification into said secure computation environment; 

enforcing said service specification with regards to all cooperating parties; 

receiving a service request from a rcquestor J Jhe_sctvi^c requested being adapted to 
contain jnfonniu inn about an i ndividual wh o i s not a party to th emachine intcrprctablc 
service s pecificati on; 

executing secure processing of said service request; and 

providing notifications as defined in tho service specification. 

YOK920020159US1 / 145-0017 13 
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40. (currently amended) An article of manufacture for use in matching 
individuals, comprising a machine readable medium tangibly embodying a program of 
instructions executable by a machine for implementing a method, the method comprising 

SlCpS Of! 

providing a, least one host computer adapted to have at least one secure coprocessor 
operating in a secure compulation environment; 

operating said at least one host computer to negotiate a machine intertable contract 
between all parties, which would cooperate with a particular application running on said host 
computer; 

uploading said contract into said secure computation environment; 

enforcing said contract wilh regards to all cooperating parties; 

receiving a service request from a requestor jhejscryj^^^ 
contakxjn^ 
contract; 

executing secure processing or said service request; and 
providing notifications as defined in the contract. 

41 . (cuirently amended) A program storage device readable by a machine, 
tangibly embodying a program of instructions executable by the machine to perform methods 
.steps for managing a matching identification service, the method comprising the slq>s of: 

providing at least one host computer adapted to have at least one secure co-processor 
operating in a secure computation environment; 

operating said at least one host computer to negotiate a machine interprctablc contract 
between all parlies, which would cooperate wilh a particular application running on said host 
computer; 

YOR92007.0J59USI / /45-0017 14 
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uploading said contract into said secure computation environment; 
enforcing said contract with regards to all cooperating parties; 

receiving a service request from a r(^ucstorJllgjjsrvjccj:g.gHest bcjnK ^lapjCiUa 
conliik^ 

executing secure processing o f said service request; and 
providing notifications as defined in the contract. 

42. (currently amended) A computer-based method for a multiparty electronic 
service, the method comprising sleps of: 

implementing on a computer system at least one contract for governing a service 
between a service provider, a client and at least one other party; 

receiving at said service provider a first request from a clicnUhcfirstic^UASitemg 
ajLapledJojttnjs^^ 
c lient and at least one o thej^party; 

sending from said service provider a data request lo one of at least one other party; 

receiving, at said service provider from said one of at least one other party, a data 
response in a secure computation environment; 

determining, in accordance with said contract, whether a match exists between said 
first request and said data response; 

ifa match results from said determining step, providing a notification of said match to 
said at least one other party. 

43. (previously presented) The method of claim 42 further comprises the step of 
providing said notification even if Ihcrc is no match as determined in said determining step. 

YOTW20020159US1 / 145-0017 15 
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44. (previously presented) The method of claim 43, wherein said step of providing 
said notification comprises the step of providing a dummy message to said at least one other 
parly. 

45. (previously presented) The method of claim 42 further comprises the step of 
notifying said client that said first request was processed. 

46. (previously presented) The method of claim 42 wherein the implementing the 
at least one contract step comprises the step of assigning a contract TD for any contract that 
governs a service between the service provider, the client and the at least one other parly. 

47. (previously presented) The method of claim 42 further comprises the step of 
executing the previous sleps in a contract engine within the secure computation environment. 

4S. (previously presented) The method of claim 47 further comprises the step of 
providing a plurality of contract engines coupled to a communication network. 

49. (proviouslyprcscntcd) The method of claim 42 wherein the determining step 
comprises the step of performing the determination in a ciypto-coproccssor. 

50. (currently amended) A computer-based method for a multiparty electronic 
service, the method comprising stops of: 

implementing on a computer system at least one contract for governing a service 
between a service provider, a client and at least one other party, 

determining, in accordance with said contract, whether a match exists between a first 
request from said client and a data response from one of al least one other part y, the firs t 
rcmiCTLhoto 

SiuyiceptQwder, a client andjitjcaslom 

if a match results from said determining step, providing a notification of said match to 
said at least one other pat ty. 

YOIW00201 59US1 / 145-0017 t6 
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5 1 . (previously presented) The method of claim 50 further comprises the step of 
providing said notification even if there is no match as determined in said determining step. 

52. (previously presented) The method of claim 5 1, wherein said step or providing 
said notification comprises the step or P rovidmg a dummy message to said at least one other 
party. 

53. (previously presented) The method of claim 50 further comprises the step of 
notifying said client that said first request was processed. 

54. (previously presented) The method of claim 50 wherein the implementing (he 
at least one contract step comprises the step of assigning a contract ID for any contract that 
governs a service between the service provider, the client and the at least one other party. 

55. (currently amended) A computer-based method for managing a matching 
identification service, the method comprising the steps of: 

Implementing on a computer system at least one contract having a contract ID for 
govei ning said matching identi ficalion service between a service provider, a client and at 
least one other party determining, in accordance with said contract TD, whether a match exists 
between a first request from said client and a data response from one of at least one other 
patty, ,th<LTkst.!\& 

one of the se rvice provider, a clien t and at leagjonc other p arty; 

if a match results Horn said determining step, providing a notification of said match to 
said at least one oilier party. 

56. (previously presented) The method of claim 55 further comprises the step of 
providing said notification even if there is no match as determined in said determining step. 

57. (previously presented) The method of claim 56, wherein said step of providing 
said notification comprises the step of providing a dummy message to said at least one other 
party. 

YO1W20020159US1 / 145-0017 1? 
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58. (previously presented) The method of claim 55 further comprises the step of 
notifying said client that said first request was processed. 

59. (currently amended) Apparatus for a multiparty electronic service, the 
apparatus comprising: 

at least one host computer operative to: 

maintain and enforce at least one contract for governing a service between a 
service provider, a client and at least one other party; and 

to determine, in accordance with said at least one contract, whether a match 
exists between a first request from said client and a data response from one or at least ono 

other pnriyjh^^^^ 

noLpiicof the semcejM-oyJdcL. a^nUm^ 

said at least one host computer is further operative to provide a notification to 
said at least one other party if a match results from said determination. 

00. (previously presented) The apparatus of claim 59. wherein said at least one 
host computer is further operative to provide said notification to said at least one other party 
if no match results from said determination. 

61 . (previously presented) The apparatus ordaim 60, wherein said at least one 
host computer is further operative to provide a dummy message to said at least one other 
party. 

62. (previously presented) The apparatus of claim 59, wherein said at least one 
host computer is further operative to provide a notification to said client that said first request 
wus processed. 

63. (previously presented) The apparatus of claim 59, wherein said at least one 
host computer comprises: 
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